Hey-thanks for that Giovanni-I never knew that existed-funnily enough there
was this quote on the same page:
"Many of Microsoft's best and most powerful utilities go almost unnoticed,
and the Log Parser is certainly one of the best (and most overlooked)."
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Colapinto Giovanni
Sent: Tuesday, December 19, 2006 5:05 PM
To: security-basics@securityfocus.com
Subject: RE: Print Server Log Analyzer
There is a fantastic tool from microsoft: LogParser
http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-
91b2-f8d975cf8c07&DisplayLang=en
it can retrieves the event id from event log using sql statemnet and have a
multiple layout to use.
Try it ;-)
Bye
-------------------------------------
GIOVANNI COLAPINTO
Logistica & Sistemi Informativi
Link s.n.c.
Via Quintino Sella, 19
20094 - Corsico (MI)
Phone: +39 02 45055818
Mobile Phone: +39 340 4945829
mailto:giovanni.colapinto@assioma.net
-------------------------------------
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of AdamCivic@gmail.com
Sent: lunedì 18 dicembre 2006 15.15
To: security-basics@securityfocus.com
Subject: Print Server Log Analyzer
Good Afternoon,
A long time fan of this list. First question.
I have a windows 2003 sp1 printer server. I want to audit printing events,
get a persons logon id, amount of pages printed etc.
The events are currently being audited in the system portion of the event
log. Which is fine and dandy, but my manager wants a pretty report not event
logs. I tried to google the solution, but there are tons of print monitoring
software out there, that is not what I need.
Does anyone know of any software or script where I decrypt the print log
into a nice excel spreadsheet where I can manipulate the data and hand it
off to my manager. I just need software to "decrypt" the logs. I
do not want to install some 3rd party monitoring software, which most of
them include their own services, etc. (especially if it is already being
logged by window)
Much thanks guys in advance,
Adam
ps- sorry if this is the wrong place to post. But auditing is security. :)
---------------------------------------------------------------------------
This list is sponsored by: ByteCrusher
Detect Malicious Web Content and Exploits in Real-Time.
Anti-Virus engines can't detect unknown or new threats.
LinkScanner can. Web surfing just became a whole lot safer.
http://www.explabs.com/staging/promotions/xern_lspro.asp?loc=sfmaildetect
---------------------------------------------------------------------------
---------:---------:---------:---------:---------:---------:---------:------
---:
Questo messaggio e gli eventuali allegati contengono informazioni riservate.
Se vi e` stato recapitato per errore e non siete fra i destinatari elencati,
siete pregati di darne immediatamente avviso al mittente. Le informazioni
contenute non devono essere mostrate ad altri, ne` utilizzate, memorizzate o
copiate in qualsiasi forma.
---------:---------:---------:---------:---------:---------:---------:------
---:
This e-mail and any attachments contain reserved information. If you are not
one of the named recipients, please notify the sender immediately. Moreover,
you should not disclose the contents to any other person, nor should the
information contained be used for any purpose or stored or copied in any
form.
